Palo Alto Networks · JSON Structure

Threat Vault Api Atp Report List Structure

AtpReportList schema from Palo Alto Networks Threat Vault API

Type: object Properties: 5
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR

AtpReportList is a JSON Structure definition published by Palo Alto Networks, describing 5 properties. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

success data total offset limit

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-structure/threat-vault-api-atp-report-list-structure.json",
  "name": "AtpReportList",
  "description": "AtpReportList schema from Palo Alto Networks Threat Vault API",
  "type": "object",
  "properties": {
    "success": {
      "type": "boolean"
    },
    "data": {
      "type": "array",
      "items": {
        "type": "object",
        "description": "Advanced Threat Prevention inline analysis report.",
        "properties": {
          "id": {
            "type": "string",
            "description": "Unique report identifier."
          },
          "sha256": {
            "type": "string",
            "description": "SHA-256 hash of the analyzed sample."
          },
          "status": {
            "type": "string",
            "enum": [
              "pending",
              "complete",
              "error"
            ]
          },
          "verdict": {
            "type": "string",
            "enum": [
              "benign",
              "malware",
              "grayware",
              "phishing",
              "unknown"
            ]
          },
          "create_time": {
            "type": "datetime"
          },
          "report": {
            "type": "object",
            "description": "Detailed behavioral analysis data.",
            "properties": {
              "file_type": {
                "type": "string"
              },
              "size": {
                "type": "int32"
              },
              "behaviors": {
                "type": "array",
                "items": {
                  "type": "object",
                  "properties": {
                    "name": {
                      "type": "string"
                    },
                    "description": {
                      "type": "string"
                    },
                    "severity": {
                      "type": "string"
                    }
                  }
                }
              },
              "network": {
                "type": "object",
                "properties": {
                  "dns_queries": {
                    "type": "array",
                    "items": {
                      "type": "string"
                    }
                  },
                  "http_requests": {
                    "type": "array",
                    "items": {
                      "type": "string"
                    }
                  },
                  "connections": {
                    "type": "array",
                    "items": {
                      "type": "object",
                      "properties": {
                        "dst_ip": {
                          "type": "string"
                        },
                        "dst_port": {
                          "type": "int32"
                        },
                        "protocol": {
                          "type": "string"
                        }
                      }
                    }
                  }
                }
              }
            }
          }
        }
      }
    },
    "total": {
      "type": "int32"
    },
    "offset": {
      "type": "int32"
    },
    "limit": {
      "type": "int32"
    }
  }
}